I recently learned about some add-on for FireFox called "FireSheep" which sounds really interesting and scary!!

After Googling it, it appears to only work with some ancient version of FF like 3.6

I think my current version of FF is like 15 or 16.

Is there an easy way to try out FireSheep on my updated version of FF?

Oh, I am using Snow Leopard if that helps.

Tom

P.S. Since I am a newbie - and a nice guy - I don't want to do anything that would jeopardize my system! I just was hoping to try FireSheep to educate myself on what I think is called "Side-Jacking". This will knowledge will come in handy since I am trying to get away from using Free Wi-Fi...

I found FireSheep to be somewhat unstable from my past experience with it. Honestly, if you want to understand how session hijacking works, just do some reading on it. Like cd1zz said, all you need is Wireshark. Here's something to start with: http://www.cleverlogic.net/tutorials/se ... k-accounts

TomTees wrote:Nothing unethical here. Just trying to see what others might be able to see about me...

I don't understand the scenario. How is capturing other users' session information going to help you with that? If you're seeing your own traffic, you already understand what the attack is capable of.

Seriously, it takes one person accusing you of hacking to land you in a heap of legal trouble that you neither want nor deserve. Only test on your own systems, devices, and networks, or with written permission from another owner. People's lives have been ruined over harmless curiosity.

Last edited by dynamik on Wed Apr 10, 2013 11:05 pm, edited 1 time in total.

You may think what you were doing at Mcdonalds would be classed as ethical, but trying to capture traffic other users network traffic is very illegal, unless you have consent from the party in question. ajohnson has suggested, and I agree, that you should use a second system of your own and test it on your own account, simple curiosity has thrown many good men in jail. If you don't have access to another physical computer, there are lots of alternatives, such as a virtual machines.

I've recently stumbled across VulnHub, it might b a good place to get you started. http://vulnhub.com/